Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/xDnDfSktq909G640YoPZowdfM9c.roa
File: xDnDfSktq909G640YoPZowdfM9c.roa (raw, json)
Hash identifier: hSazv5a4jO/KHlhyV+MqO6i8DFXzw5MSIUI0e5bodHY=
Subject key identifier: C4:39:C3:7D:29:2D:AB:DD:3D:1B:AE:34:62:83:D9:A3:07:5F:33:D7
Certificate issuer: /CN=35c96065093998ba42cfba11bf0d17d3ac403d40
Certificate serial: 01867F8FD430F2A51BF284AD3DF33628DA31
Authority key identifier: 35:C9:60:65:09:39:98:BA:42:CF:BA:11:BF:0D:17:D3:AC:40:3D:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NclgZQk5mLpCz7oRvw0X06xAPUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/xDnDfSktq909G640YoPZowdfM9c.roa
Signing time: Thu 23 Feb 2023 18:36:17 +0000
ROA not before: Thu 23 Feb 2023 18:36:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 79.139.52.0/22 maxlen: 24
95.178.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7f:8f:d4:30:f2:a5:1b:f2:84:ad:3d:f3:36:28:da:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35c96065093998ba42cfba11bf0d17d3ac403d40
Validity
Not Before: Feb 23 18:36:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c439c37d292dabdd3d1bae346283d9a3075f33d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ea:09:9b:01:83:21:73:a2:73:3c:da:58:06:
ca:c0:f8:38:bc:ee:e2:b7:50:f3:91:bd:79:cf:78:
60:50:37:c0:bf:7d:d6:86:d8:e1:bf:db:36:42:16:
d6:cc:d3:40:b4:74:a6:d7:ab:25:ae:b4:70:8b:62:
08:75:22:df:6c:bf:be:1f:3d:64:cc:b7:74:6d:53:
79:c0:51:bd:02:45:b3:03:63:47:6d:6d:6d:03:ac:
90:0e:3f:0d:bb:79:34:3b:89:3c:4a:95:e0:41:f9:
33:cf:7a:83:ff:7b:7d:c9:e7:d0:37:9a:4b:25:e0:
be:e1:5b:6f:49:89:21:96:bd:fc:e8:1b:b6:c1:f3:
9d:31:7b:e9:77:25:3a:ab:2f:80:7b:21:00:1b:be:
c8:45:91:28:f7:fb:4b:8c:9f:61:7b:90:bf:41:d6:
90:ee:b7:41:b8:fe:7f:06:c4:bc:61:fa:e8:e8:6e:
6c:92:b3:96:3f:6c:6d:7d:fe:66:64:37:e4:c3:a3:
e1:ea:ce:93:02:8f:0c:31:70:4b:65:61:b7:db:92:
b4:00:ed:d4:02:18:fe:f8:18:c8:c5:e8:ba:2c:5d:
bf:4a:a7:48:97:83:55:87:5c:62:12:a4:2f:19:81:
5f:97:5a:a0:06:1f:39:f2:bf:9a:09:25:3a:82:2b:
28:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:39:C3:7D:29:2D:AB:DD:3D:1B:AE:34:62:83:D9:A3:07:5F:33:D7
X509v3 Authority Key Identifier:
keyid:35:C9:60:65:09:39:98:BA:42:CF:BA:11:BF:0D:17:D3:AC:40:3D:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NclgZQk5mLpCz7oRvw0X06xAPUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/xDnDfSktq909G640YoPZowdfM9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/NclgZQk5mLpCz7oRvw0X06xAPUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.139.52.0/22
95.178.8.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:6f:aa:20:b5:2c:33:93:fc:d8:d7:f8:38:0e:75:f8:28:f0:
fd:dd:1f:76:e5:39:89:f8:dd:25:38:88:88:4c:44:96:9f:35:
24:6e:10:14:2d:1b:f5:a7:f1:c1:c9:29:1a:9c:20:bd:e4:0b:
01:8a:61:18:94:cc:6c:1e:b0:26:b7:48:e5:b4:4a:dd:b5:c0:
a8:9d:87:2e:8f:31:04:60:c4:56:5e:ae:44:19:4f:9e:a0:cd:
18:b1:cb:6d:bb:a9:cb:4a:c9:12:cb:fc:26:8e:a9:9c:1f:9a:
a1:53:d0:56:1b:f4:07:6c:90:05:53:7c:3f:71:28:0c:2f:24:
be:0b:72:86:2b:a2:a7:c3:b7:c1:70:e6:70:27:ca:2a:2f:98:
00:8c:5a:f7:3c:7c:48:7a:c0:f7:f1:50:c2:3c:17:7f:5b:b7:
3d:9e:d0:05:2c:38:e6:f7:f2:73:59:4a:86:05:9a:64:65:f5:
31:b2:3e:6b:46:37:6a:3a:39:72:de:70:d2:3c:ad:de:0f:ec:
5f:07:a1:1c:80:96:83:66:d7:80:23:fe:28:fb:e9:de:50:d1:
97:2b:0e:d2:7b:74:91:8e:49:79:0f:82:c0:3b:42:e1:61:a9:
ae:70:29:ea:f7:41:34:3d:ac:b6:79:94:de:28:e1:4e:47:8b:
fa:46:8b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:54 2023 by rpki-client on console.sobornost.net